Introduction
I am SAP Security Consultant for an Oil and Gas Industry. I am experienced in SAP Security and GRC Access Control as well. This article would help the GRC consultants who is interested to automate the manual HR related SAP process using ...
Dear Experts,
I configured ARM for Role requests. In Template based access request RISK VIOLATION tab is missing for approvers to run the SOD check before approval. Not visible in any of the stage (its visible only at requester stage).
Does any o...
GRC gurus,
Requirement :- Updating User group, Valid through date and Lock accounts for leaving users. All are works good except Valid through date auto update.
I configured the User Defaults BRF+ and working as expected for Change & Lock user co...
Dear Experts,
I am looking for BRF+ configuration steps for the below actions.
1. Update usergroup
2. End validity - current date
3. Lock user
Please help me.
Regards,
Mahendran R
Hi,Please make sure that you Activate and Regenerate the MSMP once again in production even though moved through transport as its mandatory step.Regards,Mahendran R
Plaban,Not sure why audit logs shows as "Trying to create user if already exists". Either we can remove the check box or customized provision with each system level and apart from these, we have nothing to do with configuration and it might be a bug ...
Plaban,Remove the check box of "For Change User Action", it will not try to create it. if not, Maybe you want to restrict it with "System Provisioning configuration" to avoid this?Regards,Mahendran R
Plaban,Basically HR Triggers works based on Action types gets updated in PA tables. So please maintain the specific values in BRF+ decision table which will work. May be you can refer my blogpost which talks about GRC 10.0 HR Trigger Architecture.Reg...